CVE-2023-4320

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-4320

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-4320.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-4320

Downstream

RHSA-2024:2010

Published

2023-12-18T14:15:09.830Z

Modified

2026-03-15T14:48:13.630324Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

[none]

Details

An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity.

References

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-4320.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "fixed": "6.13"
            }
        ]
    }
]